Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/b4f584-f256-4cab-adbb-c4620fab1f19/1/yo8DsaNLA3roO7ctaOxrJrmcNeQ.roa
File: yo8DsaNLA3roO7ctaOxrJrmcNeQ.roa (raw, json)
Hash identifier: Q7sCWm38tSiV96EcQCk6YRmIfqhhc5fXYLy2NkyW6Qk=
Subject key identifier: CA:8F:03:B1:A3:4B:03:7A:E8:3B:B7:2D:68:EC:6B:26:B9:9C:35:E4
Certificate issuer: /CN=6bd0c5b3fa6c288860ccb6d90200cbb8e57db7f7
Certificate serial: 08534956
Authority key identifier: 6B:D0:C5:B3:FA:6C:28:88:60:CC:B6:D9:02:00:CB:B8:E5:7D:B7:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a9DFs_psKIhgzLbZAgDLuOV9t_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/b4f584-f256-4cab-adbb-c4620fab1f19/1/yo8DsaNLA3roO7ctaOxrJrmcNeQ.roa
Signing time: Fri 25 Mar 2022 17:06:23 +0000
ROA not before: Fri 25 Mar 2022 17:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 45.150.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139675990 (0x8534956)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bd0c5b3fa6c288860ccb6d90200cbb8e57db7f7
Validity
Not Before: Mar 25 17:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca8f03b1a34b037ae83bb72d68ec6b26b99c35e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9c:01:f8:7f:36:35:78:01:6b:95:ab:42:43:
d2:8e:31:c7:39:f3:85:5d:ef:59:4e:f8:ef:c9:e1:
dc:3f:09:81:2e:1d:74:38:f7:3c:0b:cc:0f:fc:de:
c1:a3:7b:a0:30:7a:61:f4:f8:c4:fd:12:a3:b5:f3:
8e:eb:3a:5d:7e:b3:5f:ab:6d:6f:93:df:ba:5e:84:
2b:d2:b0:a6:47:86:4f:b5:18:9f:24:85:33:47:4a:
aa:30:11:62:3b:b6:44:93:2b:8a:4a:b8:02:9a:1a:
b3:f2:6c:68:11:5d:14:39:dc:69:c7:0d:9c:2c:98:
be:52:d5:d0:11:42:1f:53:ff:e8:2f:b6:73:c3:3c:
2e:b2:b3:71:77:f4:d0:78:d9:db:a7:f6:e6:cd:4b:
ca:fb:d6:75:bb:c2:9c:14:d4:b5:b1:7f:96:79:32:
8b:e9:2d:48:c7:82:b1:ea:ba:e0:75:09:c8:f4:1a:
60:4d:86:4f:f0:a6:cd:f7:f5:24:38:59:fb:2d:97:
62:12:5b:e0:e0:6c:db:60:7f:8b:5e:27:18:49:25:
d1:f8:5b:c3:e2:a4:ec:3e:de:76:f4:76:3d:4b:ab:
71:43:86:f9:bb:6b:39:73:ea:54:24:7e:f9:a2:a0:
28:a4:b3:ed:63:fa:fd:5c:41:1b:ac:bf:e6:18:06:
75:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:8F:03:B1:A3:4B:03:7A:E8:3B:B7:2D:68:EC:6B:26:B9:9C:35:E4
X509v3 Authority Key Identifier:
keyid:6B:D0:C5:B3:FA:6C:28:88:60:CC:B6:D9:02:00:CB:B8:E5:7D:B7:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9DFs_psKIhgzLbZAgDLuOV9t_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b4f584-f256-4cab-adbb-c4620fab1f19/1/yo8DsaNLA3roO7ctaOxrJrmcNeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b4f584-f256-4cab-adbb-c4620fab1f19/1/a9DFs_psKIhgzLbZAgDLuOV9t_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.5.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:ea:6f:2a:dc:82:cf:76:ac:e2:ed:29:9f:c1:e9:e5:6f:e5:
fb:62:9a:83:7a:4e:12:d3:b7:12:ee:4e:dd:d9:ae:57:38:53:
87:17:c3:e2:8c:5d:91:e5:70:9c:ad:8b:40:1b:43:21:c4:ff:
85:da:e6:72:b9:60:d9:75:21:c5:e3:41:44:26:80:dc:96:2e:
70:aa:ec:9d:c1:9e:ca:20:1d:c0:1c:29:1d:ea:eb:0d:c9:09:
15:ab:eb:18:9f:d0:7b:c9:76:a1:0c:05:e0:12:cf:cf:8e:8b:
dc:9d:81:d2:06:57:7f:92:b4:f5:9d:55:00:2f:be:60:31:fe:
b3:f6:2a:99:1e:21:f1:86:8a:0c:99:57:74:47:b7:4f:1a:b6:
e3:ba:60:fe:3d:e0:c2:9c:6c:3a:ea:a3:d7:a2:1f:ab:6f:42:
f0:70:77:a6:7b:ef:e0:b1:f1:c7:5a:22:a7:d5:02:df:1b:51:
ee:75:d4:d0:6b:9c:8b:8a:e7:ba:6b:ed:0e:5a:24:b6:88:58:
2c:a1:a2:82:d1:ea:e7:39:b2:d9:17:26:83:df:67:80:6b:02:
73:45:d1:92:c6:35:7e:1f:a5:8a:09:8b:09:aa:58:61:fb:78:
b4:df:b1:16:a3:aa:06:9b:17:a8:56:df:ff:82:1a:3e:32:9a:
11:c8:ba:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 12:49:17 2025 by rpki-client